How NOπI Works

The same plaintext always produces the same token. This means "John Smith" in message 1 and "John Smith" in message 10 map to the same [NAME: Ry0Ixd1] token, preserving cross-message context without ever exposing real data to the LLM.

NOπI doesn't just mask values. It neutralizes data-type labels that could trigger LLM safety refusals or re-identify sensitive categories. Labels like "social security number" become "ID number", "credit card number" becomes "account number", and "date of birth" becomes "date", so the LLM processes tokens without recognizing the underlying data type.

If PII detection encounters an error, the proxy blocks the request rather than letting unprotected data through. The system uses fail-safe architecture that blocks requests if tokenization is unavailable. Every decision is logged for audit.

NOπI supports both standard and streaming (SSE) responses. Token replacement happens on-the-fly as chunks arrive from the LLM provider, so latency impact is minimal even for long streaming completions.

Vault tokens have a configurable time-to-live (TTL) that controls how long tokenized PII is stored. Free tier tokens expire after 1 day. Pro and Enterprise tiers can set retention from 1 day to permanent, giving compliance teams direct control over data lifecycle. A TTL of zero means tokens are retained indefinitely. When a token expires, the underlying PII is permanently deleted from the vault.